Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document.
Note: Even the most advanced machine translation cannot match the quality of professional translators.
Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).

Licensing Requirements and Limitations for Local Attack Defense

Licensing Requirements and Limitations for Local Attack Defense

Involved Network Elements

Other network elements are not required.

Licensing Requirements

Local attack defense is a basic feature of a switch and is not under license control.

Feature Limitations

In V200R009C00 and earlier versions, the attack source tracing function does not take effect on IPv6 packets.

The user-level rate limiting is available in the X series cards of V200R009 and later versions.

It is recommended that you disable user-level rate limiting on the network-side interfaces of an access switch and a gateway switch.
The user-level rate limiting is enabled on interfaces by default.

The packets destined for the local switch are sent to the CPU. After functions related to some protocols such as BGP, OSPF, and LACP are enabled, packets of these protocols are also sent to the CPU.
If packets sent to the CPU match both CPCAR and a traffic classification rule in a traffic policy, but the actions to be taken conflict with each other, CPCAR takes effect.